garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
282 Commits 17 Branches 73 Tags
980aa7198a56e69a1143ea7c2b6486c702dcde59
Commit Graph

111 Commits

Author SHA1 Message Date
erwanlr
42c68fe683 show_progression used in brute forcing 2013-01-04 15:30:35 +01:00
erwanlr
c0eadd22db show_progress_bar renamed to show_progression 2013-01-04 15:15:14 +01:00
erwanlr
a4ace91e68 Fix #96 Username detection from header location when a trailing slash is present 2013-01-01 15:30:01 +01:00
erwanlr
9b14a8d038 Fix #54 False positive when a plugin directory redirects to the homepage 2012-12-21 12:21:40 +01:00
erwanlr
c0a05a4119 Ref #52 RSS url detection 2012-12-20 17:46:06 +01:00
erwanlr
221068ef1b Indentation 2012-12-20 17:02:43 +01:00
erwanlr
6df6cdc997 Typo & indentation 2012-12-20 16:57:17 +01:00
erwanlr
42ee4b9183 Ref #54 Implementation of WebSite.homepage_hash 2012-12-20 16:53:13 +01:00
erwanlr
b5390be6b5 WpTarget.error_404_hash moved to WebSite module 2012-12-20 16:22:04 +01:00
erwanlr
38c81384e8 WebSite module reworked 2012-12-19 17:53:11 +01:00
erwanlr
d77a312844 Merge pull request #88 from FireFart/xmlrpc 
Detect XML Pingback URL
 2012-12-13 08:17:59 -08:00
Christian Mehlmauer
509a400add Bugfixes and rspecs 2012-12-13 16:46:52 +01:00
erwanlr
60b1d20aa2 --proxy, --proxy-auth help updated 2012-12-13 13:42:07 +01:00
erwanlr
b775838e96 Readme updated for basic auth 2012-12-13 13:36:09 +01:00
Christian Mehlmauer
4d852b5983 Detect XML Pingback URL 2012-12-13 11:41:08 +01:00
erwanlr
2a782e9680 Basic auth 2012-12-12 17:05:06 +01:00
erwanlr
32506ca830 Scoring system removed from version finderprinting 2012-12-11 20:29:50 +01:00
erwanlr
079b43a33d Merge pull request #78 from FireFart/users 
Fixing empty usernames (#66)
 2012-12-06 12:03:01 -08:00
erwanlr
a7df9feabf Fix #77 facebook.com detected as a custom wp-content directory 2012-12-06 21:01:14 -06:00
erwanlr
dc6c8b2eb8 Fix #57 Plugins form passive detection no longer loaded when enumerating only vulnerable plugins 2012-12-06 17:04:16 -06:00
erwanlr
ab59bd1eb3 Fix #24 --exclude-content-based option added 2012-12-06 16:50:59 -06:00
Christian Mehlmauer
2b6c36ff4a Fixing empty usernames 2012-12-06 20:58:40 +01:00
ethicalhack3r
fd591a0675 Some small refactoring and fix for issue #66 2012-11-30 22:00:23 +01:00
ethicalhack3r
a72ca18eac Docs updated. 2012-11-28 20:36:14 +01:00
Christian Mehlmauer
ee0e648a07 rspec 2012-11-26 22:36:07 +01:00
Christian Mehlmauer
31d2ca06eb initial commit 2012-11-26 22:30:07 +01:00
Erwan
d802799bd2 Ref #69, #7 Proxy Auth Support Added 2012-11-22 15:23:59 +01:00
ethicalhack3r
c128bd5b1a Changed enumeration options. See Issue #58. Now shows examples in help. See Issue #62 2012-11-14 20:13:02 +01:00
ethicalhack3r
964f542ce3 Removed global request URI.encode. Added URI.encode on wp 2012-11-07 14:06:15 +01:00
ethicalhack3r
418ff33f6d Added version fingerprint from RDF and ATOM feeds. See issue #50. Specs added and passed. 2012-10-27 17:10:38 +02:00
ethicalhack3r
68027cbd17 Fixed FP in rss version fingerprint. See Issue: #48 2012-10-26 13:10:48 +02:00
Erwan
d438f37f57 Warnings from URI::escape (obsolete since ruby 1.9.2) and some instance variables not initialized fixed 2012-10-23 16:36:57 +02:00
Erwan
fd5cf4785c Rspec fixes 2012-10-23 12:19:16 +02:00
ethicalhack3r
50436a83b5 WpTarget.wp_content_dir regex was not matching if path was '/'. Removed path from first regex. 2012-10-21 02:04:16 +02:00
Jon
ce988d48f4 added wp-config.txt backup file 2012-10-10 10:57:21 -04:00
Christian Mehlmauer
8df37a425d fix registration detection 
rspec tests
 2012-09-24 22:36:22 +02:00
Christian Mehlmauer
2e4a622cec -) Check if userregistration is enabled 
-) Check if blog is a multisite
 2012-09-24 20:46:26 +02:00
Christian Mehlmauer
fe1191a51e bugfixing and rspec tests 2012-09-24 18:07:22 +02:00
Christian Mehlmauer
7056d4ecd7 added link 2012-09-24 15:20:40 +02:00
Christian Mehlmauer
14e5552a25 get wordpress version from wp-links-opml.php 2012-09-24 14:57:33 +02:00
Christian Mehlmauer
b4655e7d5a locate searchreplacedb2.php. this file reads database credentials 2012-09-24 14:39:05 +02:00
Christian Mehlmauer
db1303caa5 examples 2012-09-23 23:14:55 +02:00
Christian Mehlmauer
c0c14faad1 check if plugin directory exists and warn the user 2012-09-23 22:55:19 +02:00
Christian Mehlmauer
a15028793e -) custom plugins directory (outside of wp-content) 
-) feedback from ewanlr
-) Regex fix for version detection from readme.txt due to false positives (tag-cloud-widget plugin)
 2012-09-23 21:50:41 +02:00
Christian Mehlmauer
9b6a2805d7 custom plugins directory 2012-09-22 23:50:14 +02:00
Christian Mehlmauer
ef72568688 formats 2012-09-22 16:19:21 +02:00
Christian Mehlmauer
ae96d93cee -) Code formatting 
-) rspec tests
 2012-09-22 15:44:41 +02:00
Christian Mehlmauer
55fa6422b2 rpsec tests 2012-09-22 10:19:37 +02:00
Christian Mehlmauer
56613fff8e colored output 2012-09-22 00:13:02 +02:00
Christian Mehlmauer
3845a35ef9 typo 2012-09-21 23:49:22 +02:00